Fortimanager Best Practices

Forum|Forum|7 months ago
November 14, 2025
3 replies
743 views

Hi there,

New to Fortimanager and trying to figure out some simple best practices. I have to roll out around 20 x 70G firewalls across 20 locations. The configuration of these firewalls will be identical. Struggling a little in Fortimanager with creating zones, software switches, etc. Would a best practice to be just setting one up locally exacly how I want it and then importing the config to push to the others or is there a better way?

These are all pretty simple... few software switches with VLAN's all grouped into zones and a handful of policy rules.

FortiGate

Anthony_E

Staff

Hello Hanika,

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

Thanks,

Best Regards

Jean-Philippe_P

Staff & Editor

Hello,

We are still looking for an answer to your question.

We will come back to you ASAP.

Jean-Philippe - Fortinet Community Team

Jakob-AHHG

Explorer III

Hi Hanika,

You need to do:
1: Set ADOMs, if needed

2: Set site values...: Device Manager: Rightclick on: Managed Fortigates, select 'Edit Variable Settings'.
Variables set here, can be specific for each site, or global, and then used in templates and scripts! Like, if you set a 'siteID' that is uniqe for each site, you could insert it in templates when you create VLAN IP nets: 10.${siteID}.${vlan}.0

3: Set Device Manager: Provisioning Templates.

Create Provistion templates for various parts of the system, some is GUI, others is scripts (aka CLI commands).

4: Add your FortiGates, either by direct connection or by pre-entering the serialnumber, then set the Site details for it, and then connect it and push the provisioning templates for the site to it.

Hope it makes sence.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded